|
Lines 339-353
Link Here
|
| 339 |
einfo "Press enter to set up the SSH keys used for SSH transport" |
339 |
einfo "Press enter to set up the SSH keys used for SSH transport" |
| 340 |
read |
340 |
read |
| 341 |
|
341 |
|
| 342 |
# generate one rsa (for legacy) and one ecdsa (for new systems) |
342 |
# generate one rsa (for legacy systems) |
| 343 |
ssh-keygen -t rsa -f /var/lib/munin/.ssh/id_rsa -N '' -C "created by portage for ${CATEGORY}/${PN}" || die |
343 |
ssh-keygen -t rsa -f /var/lib/munin/.ssh/id_rsa -N '' -C "created by portage for ${CATEGORY}/${PN}" || die |
| 344 |
ssh-keygen -t ecdsa -f /var/lib/munin/.ssh/id_ecdsa -N '' -C "created by portage for ${CATEGORY}/${PN}" || die |
344 |
chmod 0600 /var/lib/munin/.ssh/id_rsa || die |
|
|
345 |
|
| 346 |
# generate one ecdsa (for new systems) |
| 347 |
ssh-keygen -t ecdsa -f /var/lib/munin/.ssh/id_ecdsa -N '' -C "created by portage for ${CATEGORY}/${PN}" |
| 348 |
if [[ "$?" -eq 0 ]]; then |
| 349 |
chmod 0600 /var/lib/munin/.ssh/id_ecdsa || die |
| 350 |
else |
| 351 |
ewarn "Failed to generate an ECDSA key" |
| 352 |
ewarn "Maybe you have net-misc/openssh[bindist]?" |
| 353 |
sed -i -e 's|\(.*/id_ecdsa\)|#\1|' /var/lib/munin/.ssh/config |
| 354 |
fi |
| 355 |
|
| 345 |
chown -R munin:munin /var/lib/munin/.ssh || die |
356 |
chown -R munin:munin /var/lib/munin/.ssh || die |
| 346 |
chmod 0600 /var/lib/munin/.ssh/id_{rsa,ecdsa} || die |
|
|
| 347 |
|
357 |
|
| 348 |
einfo "Your public keys are available in " |
358 |
einfo "Your public key(s) are available in " |
| 349 |
einfo " /var/lib/munin/.ssh/id_rsa.pub" |
359 |
local PUBLIC_KEY |
| 350 |
einfo " /var/lib/munin/.ssh/id_ecdsa.pub" |
360 |
for PUBLIC_KEY in /var/lib/munin/.ssh/id_*.pub; do |
|
|
361 |
einfo " ${PUBLIC_KEY}" |
| 362 |
done |
| 351 |
einfo "and follows for convenience" |
363 |
einfo "and follows for convenience" |
| 352 |
echo |
364 |
echo |
| 353 |
cat /var/lib/munin/.ssh/id_*.pub |
365 |
cat /var/lib/munin/.ssh/id_*.pub |
